forked from andlabs/reallymine
-
Notifications
You must be signed in to change notification settings - Fork 0
/
bfmbr.go
93 lines (82 loc) · 1.96 KB
/
bfmbr.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
// 12 january 2015
// from trymbr.go 11 january 2015
package main
import (
"fmt"
"os"
"io"
"crypto/aes"
"bytes"
)
const blocksize = 512
const keysize = 16 // AES-128
//const keysize = 24 // AES-192
//const keysize = 32 // AES-256
//const keysize = 8 // DES
const firstPotentialOff = 0//0x50
const lastPotentialOff = blocksize
func main() {
f, err := os.Open(os.Args[1])
if err != nil {
panic(err)
}
keyblock := make([]byte, blocksize)
_, err = io.ReadFull(f, keyblock)
if err != nil {
panic(err)
}
f.Close()
f, err = os.Open(os.Args[2])
if err != nil {
panic(err)
}
mbr := make([]byte, blocksize)
_, err = io.ReadFull(f, mbr)
if err != nil {
panic(err)
}
f.Close()
lookfor := []byte(os.Args[3])
mbrout := make([]byte, blocksize)
try := func(key []byte, xfmt string, xargs ...interface{}) {
cipher, err := aes.NewCipher(key)
if err != nil {
panic(err)
}
cbs := cipher.BlockSize()
if (lastPotentialOff - firstPotentialOff) % cbs != 0 {
panic("uneven blocks")
}
for j := 0; j < blocksize; j += cbs {
cipher.Decrypt(mbrout[j:], mbr[j:])
}
if bytes.Contains(mbrout, lookfor) {
fmt.Printf("%x ", key)
fmt.Printf(xfmt, xargs...)
fmt.Printf("\n")
}
}
tryrev := func(key []byte, xfmt string, xargs ...interface{}) {
for rev := 0; rev < keysize; rev += 4 {
key[rev + 0], key[rev + 3] = key[rev + 3], key[rev + 0]
key[rev + 1], key[rev + 2] = key[rev + 2], key[rev + 1]
}
try(key, "u32 byteswap " + xfmt, xargs...)
}
for i := firstPotentialOff; i + keysize <= lastPotentialOff; i++ {
key := make([]byte, keysize)
copy(key, keyblock[i:])
try(key, "normal")
tryrev(key, "normal")
}
for i := firstPotentialOff; i + keysize <= lastPotentialOff; i++ {
for j := firstPotentialOff; j + keysize <= lastPotentialOff; j++ {
key := make([]byte, keysize)
for k := 0; k < keysize; k++ {
key[k] = keyblock[i + k] ^ keyblock[j + k]
}
try(key, "xor %d %d", i, j)
tryrev(key, "xor %d %d", i, j)
}
}
}